cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1592
Views
0
Helpful
2
Replies

how do I use aaa and radius to authenticate users to a web server in DMZ

jgulli
Level 1
Level 1

I hope some one can help me...

I am trying to configure a router with 12.13.t4 (2612) to use aaa to authenticate web server users with a Windows 2000 radius server.

i have done this for local logons to the router and this works ok.

But I cant seem to work out the syntax to say:

If anyone coming thru this router (with the aaa commands) wants to go to this web server then authenticate against this radius server.

Can someone please point me in the right direction.

Any help would be helpful....

thanks in advance, Jim

2 Replies 2

scoclayton
Level 7
Level 7

Jim,

I believe the feature you are looking for is called "Auth-Proxy". Take a look at the following example and see if this doesn't get you started - http://www.cisco.com/warp/public/793/ios_fw/auth6.html

Scott

Hi,

Thanks, I tried it but I found that IP-Auth only supports http and not https or anything else like telnet etc,,, (well, thats what I found, maybe I dont understand it correctly).

When using http it presents an ugly web page for username and password rather than the traditional popup dialog box like CCO does.

Surely this cant be this hard to set up authentication to a radius server, CCO seems to do this nicely when logging on?.

Any other suggestions,

thanks,

Jim